Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: 6LGsHz7dngno5TQW1zTI8YqMDkqiMn/G+v149pIr5cM=
Subject key identifier: CE:F1:61:09:14:B7:E2:F1:47:85:5C:55:66:F0:06:A9:FB:E0:FF:3C
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 01965613B14E19D0425A4E9BF90FD09A7211
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0B82
Signing time: Mon 21 Apr 2025 02:00:53 +0000
Manifest this update: Mon 21 Apr 2025 02:00:53 +0000
Manifest next update: Tue 22 Apr 2025 02:00:53 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: GkJbdEIX06mMeSzFH2+csXCXD6tiACXzB6qGxy9wKIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:b1:4e:19:d0:42:5a:4e:9b:f9:0f:d0:9a:72:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Apr 21 02:00:53 2025 GMT
Not After : Apr 22 02:00:53 2025 GMT
Subject: CN=cef1610914b7e2f147855c5566f006a9fbe0ff3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3d:93:68:1b:be:db:63:b1:78:12:e5:4b:a1:
03:02:9d:7b:43:af:90:f1:08:d9:f2:e0:83:ef:df:
e2:35:f6:24:2b:9f:bf:06:b5:b1:5a:a2:34:a3:3d:
21:b8:78:8d:b9:0b:3f:01:0b:f6:d2:57:4a:b8:db:
be:95:3e:c2:42:8a:00:93:92:15:65:c3:c7:72:39:
1f:7e:86:82:12:e5:bc:54:fe:16:a3:dd:51:cb:d3:
e7:43:31:b4:a1:46:6e:22:81:1d:aa:1f:cc:dc:ec:
a0:e8:87:f4:80:d8:4d:e0:54:80:67:60:02:e8:7a:
1c:b0:fb:e8:56:d0:50:58:38:24:b6:0f:35:f1:a6:
b2:ec:89:ee:5e:e1:f7:62:ea:5d:2a:ad:2e:fb:67:
3d:b8:6e:9a:d8:e2:2a:22:24:4f:6a:0c:c6:01:2e:
4b:e6:21:f5:a0:52:cb:3c:f9:7b:df:12:6b:a5:de:
10:a7:10:0b:44:dc:32:1c:d7:fd:1b:22:5e:8f:8d:
c5:23:c8:e9:3a:91:52:98:f9:c6:af:0b:ff:87:86:
2a:4c:17:8a:10:b6:62:5f:2a:0b:05:59:68:6d:af:
1f:0b:a7:74:be:31:8d:23:c2:07:38:ac:ec:e9:7b:
1a:b2:ae:45:11:23:d3:d2:b2:b5:1e:69:ba:26:6d:
4c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F1:61:09:14:B7:E2:F1:47:85:5C:55:66:F0:06:A9:FB:E0:FF:3C
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:a2:78:98:b3:b5:f4:a6:4b:e0:4c:1d:13:84:90:61:f0:4a:
17:fa:8c:99:7e:0a:2a:73:da:15:2b:92:f8:d7:c1:7c:cc:43:
36:d4:73:31:37:b4:ab:25:54:17:1d:af:72:25:fc:01:43:71:
80:39:58:a5:8d:3b:2d:ff:c3:c2:a4:e1:6c:e6:6b:a8:9e:b2:
b5:85:58:cb:28:1d:1f:c1:0e:04:73:0c:fb:79:65:fc:c6:03:
79:c9:39:cf:02:d7:c8:80:0c:aa:26:ac:0a:55:f0:1a:97:77:
f9:1b:67:c0:81:66:1a:06:42:71:88:76:c3:be:1b:78:b9:b6:
d8:ac:b6:09:88:05:b5:2d:a9:b2:28:cb:c9:69:cb:78:ee:0f:
f7:9b:ce:3e:e1:f9:66:e7:e9:2f:26:68:47:25:0b:db:4f:c4:
c7:0b:31:9c:dd:a3:aa:12:d9:c1:70:68:b7:2b:66:4e:7b:0a:
72:5b:32:43:68:6f:1f:1b:aa:35:b2:6c:e3:8f:57:59:e2:b7:
89:e3:68:89:78:72:02:a7:4c:ef:c1:28:1a:8b:ce:3d:e5:e7:
18:1a:da:5a:8c:69:ad:1f:22:de:8d:82:60:ae:37:5b:3f:ed:
26:2b:09:1b:a9:7d:cd:a8:2d:fd:5a:98:55:cd:10:a5:c2:6f:
8d:46:35:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:05:19 2025 by rpki-client